malware Archives - Page 2 of 57 - Cyber Security Minute

New ZLoader Malware Variant Surfaces with 64-bit Windows Compatibility

Issued by: The Hacker News

Threat hunters have identified a new campaign that delivers the ZLoader malware, resurfacing nearly two years after the botnet’s infrastructure was dismantled in April 2022. A new variant of the malware is said to have been in development since September 2023, Zscaler ThreatLabz said in an analysis published this month. “The new version of Zloader…

News

A TrickBot malware developer sentenced to 64 months in prison

Issued by: Security Affairs

The Russian national Vladimir Dunaev (40) has been sentenced in the US to 64 months in prison for his role in the development and distribution of the TrickBot malware. Vladimir Dunaev was extradited to the U.S. in October 2021. Dunaev, also known as FFX, was involved in the development of a browser injection module for…

News

Russian Hacker Sentenced to Over 5 Years in US Prison

Issued by: DataBreach Today

A U.S. federal judge sentenced a Russian national to five years and four months in prison for his role in developing TrickBot malware, which is used to target businesses, schools and hospitals across the country. Vladimir Dunaev in the U.S. District Court for the District of Northern Ohio in December pleaded guilty to one count…

Malware & Threats

MacOS Malware Targets Bitcoin, Exodus Cryptowallets

Issued by: Dark Reading

Fresh malware targeting Apple users in the US and Germany is infecting Bitcoin and Exodus cryptowallet applications with a Trojan distributed through pirated software, according to Kaspersky researchers. The malware is delivered via cracked applications and can replace Exodus and Bitcoin cryptowallet applications installed on the user’s machine with infected versions that steal secret recovery…

Malware & Threats

North Korea Debuts ‘SpectralBlur’ Malware Amid macOS Onslaught

Issued by: Dark Reading

The prolific North Korean state-backed threat actor known as TA444 is back with shiny new malware for targeting macOS users, dubbed “SpectralBlur.” The custom tool is the latest in a string of proprietary malware that the advanced persistent threat (APT) group has been consistently generating — a trait that sets it apart from other DPRK-sponsored…

Malware & Threats

Microsoft disables online Windows App Installer after attackers abuse it

Issued by: CSO Online

Microsoft has disabled the App Installer functionality that allowed Windows 10 apps to be installed directly from a web page by clicking on a link that used the ms-appinstaller URI scheme. This functionality has been heavily abused in recent months by different threat actors to deploy ransomware and other malicious implants. “Threat actors have likely…

News

Russian Military Intelligence Blamed for Blitzkrieg Hacks

Issued by: DataBreach Today

Ukrainian cyber defenders report that fast-acting Russian military intelligence hackers have been targeting government agencies as well as organizations in Poland using backdoor malware tied to phishing lures based on a fake letter from the Ukrainian deputy prime minister. The Computer Emergency Response Team of Ukraine on Thursday detailed a spear-phishing campaign that it has…

Malware & Threats

New Rugmi Malware Loader Surges with Hundreds of Daily Detections

Issued by: The Hacker News

A new malware loader is being used by threat actors to deliver a wide range of information stealers such as Lumma Stealer (aka LummaC2), Vidar, RecordBreaker (aka Raccoon Stealer V2), and Rescoms. Cybersecurity firm ESET is tracking the trojan under the name Win/TrojanDownloader.Rugmi. “This malware is a loader with three types of components: a downloader…

Mobile Security

Xamalicious Android malware distributed through the Play Store

Issued by: Security Affairs

McAfee Mobile Research Team discovered a new Android backdoor dubbed Xamalicious that can take full control of the device and perform fraudulent actions. The malware has been implemented with Xamarin, an open-source framework that allows building Android and iOS apps with .NET and C#. Xamalicious relies on social engineering to gain accessibility privileges, then it…

Malware & Threats

Chameleon Android Malware Can Bypass Biometric Security

Issued by: SecurityWeek

Active since early 2023, the malware initially targeted mobile banking applications in Australia and Poland, but has since expanded its reach to the UK and Italy. When initially uncovered, ThreatFabric explains, Chameleon used multiple loggers, had limited malicious functionality, and contained various unused commands, suggesting that it was still under development. Employing a proxy feature…